CVE-2010-0669

Priority
Medium
Description
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize
user profiles, which has unspecified impact and attack vectors.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0669
http://www.ubuntu.com/usn/usn-911-1
Notes
jdstrand> upstream plans to backport to 1.7 and 1.8 only.
Assigned-to
jdstrand
Package
Source: moin (LP Ubuntu Debian)
Upstream:released (1.8.7, 1.9.2-1)
Ubuntu 8.04 LTS (Hardy Heron):released (1.5.8-5.1ubuntu2.3)
Ubuntu 10.04 LTS (Lucid Lynx):released (1.9.2-2ubuntu1)
Patches:
Upstream:3888:232cad689a08 (1.7)
Upstream:3889:970d94ea19f2 (1.7)
Upstream:3890:a7838f68fbcd (1.7)
Upstream:3891:1f638ed400a0 (1.7)
Upstream:4478:232cad689a08 (1.8)
Upstream:4479:970d94ea19f2 (1.8)
Upstream:4480:a7838f68fbcd (1.8)
Upstream:4488:1f638ed400a0 (1.8)
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:20:44 UTC (commit 5347)